Identity Management Services provide these capabilities:
Authentication – Quickly verify user identities (Who you are).
Authorization – Control users access (What you can access).
Administration – Manage users and the policies for controlling user’s access privileges.
Identity Management Services include:
Person Registry – University’s identity system implemented for creation and maintenance of users’ electronic identities at the university and the resources they are permitted to access.
Single Sign-On (CAS) – A central authentication service (CAS) that enables a user to be prompted to log-in only once to access multiple web applications that are integrated with CAS.
Enterprise Directory Service (OpenLDAP) – University repository of users and attributes for use in authentication and providing directory information. Lightweight Directory Access Protocol (LDAP) is the application protocol for querying and modifying the directory services.
Password Repository (Kerberos) – University’s password store used at the University for NetID. When a user or application authenticates with the central authentication service (CAS), the password is validated against what is stored in the Kerberos password repository.
User Network Identifier (NetID) – An assigned University wide identifier required by online services to be entered along with password during log in to authenticate for access.
NetID+ (Two-Factor Authentication- Duo) – NetID+ is a two-factor authentication service implemented for employees, guests, and students. It provides additional security that enables university systems to verify user’s identities with greater certainty.
Rutgers Guest Request System – Rutgers Guest Request System is an enterprise self-service tool that enables the University Guests to submit their requests to obtain a digital identity (NetID and active guest role).